Free Malware Removal Forum

Welcome to MalwareRemoval.com,What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

I have a newish laptop that had a trial of Macafee installed, once that expired after 30 days I decided what the heck I will try out MS's Defender, and what do you know, a lot of malware had gone under the radar. I should have known better, but I thought I'd use it during the free trial, but now I am paying the price.

Anyway, Defender said it had "fixed" the problems, however after a spontaneous reboot, I now find myself a happy owner of a win 10 system that now refuses to start defender, and I don't trust it a bit.

I used to be a bug hunter back in the XP days, but Win 10 has me beat. You will see stuff in the logs from a bit of fun with Trovi search redirect a few months ago.

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txtTcpip\Parameters: [DhcpNameServer] 8.8.8.8 8.8.4.4 10.1.1.1Tcpip\..\Interfaces\{f07a1244-cca8-4c31-842b-e76aab81d8dc}: [DhcpNameServer] 8.8.8.8 8.8.4.4 10.1.1.1

Some files in TEMP:====================C:\Users\Jacob\AppData\Local\Temp\dllnt_dump.dllC:\Users\Jacob\AppData\Local\Temp\libeay32.dllC:\Users\Jacob\AppData\Local\Temp\msvcr120.dllC:\Users\Jacob\AppData\Local\Temp\sqlite3.dll

Error: (07/04/2016 05:46:52 PM) (Source: Service Control Manager) (EventID: 7022) (User: )Description: The Intel(R) Management and Security Application Local Management Service service hung on starting.

Error: (07/04/2016 05:43:58 PM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The VMware Workstation Server service failed to start due to the following error: %%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (07/04/2016 05:43:58 PM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the VMwareHostd service to connect.

Error: (07/04/2016 05:40:23 PM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The Windows Presentation Foundation Font Cache 3.0.0.0 service failed to start due to the following error: %%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (07/04/2016 05:40:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the FontCache3.0.0.0 service to connect.

Error: (07/04/2016 05:39:07 PM) (Source: Service Control Manager) (EventID: 7000) (User: )Description: The SystemUsageReportSvc_WILLAMETTE service failed to start due to the following error: %%1053 = The service did not respond to the start or control request in a timely fashion.

Error: (07/04/2016 05:39:07 PM) (Source: Service Control Manager) (EventID: 7009) (User: )Description: A timeout was reached (30000 milliseconds) while waiting for the SystemUsageReportSvc_WILLAMETTE service to connect.

Date: 2016-06-22 18:36:46.227 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-18 03:49:06.750 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-16 03:37:19.500 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-12 11:47:50.174 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-09 23:33:29.210 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-09 15:44:01.652 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-08 21:31:37.293 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-08 20:24:37.027 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-06-06 02:44:45.047 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

UPDATE to add behaviour: machine is not redirecting, however there is the odd bit of behaviour I can't really attribute to "just wireless". The main problem I have is the lengthy boot/post log in hdd churn, that has me concerned.

Who is online

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.